Alternatives and similar repositories for c2

Users that are interested in c2 are comparing it to the libraries listed below

• winsecurity / Offensive-C-Sharp
  ☆165Updated 2 years ago
• dobin / antnium
  A C2 framework for initial access in Go
  ☆196Updated 3 years ago
• Enelg52 / KittyStager
  KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this p…
  ☆223Updated 2 years ago
• MythicAgents / Medusa
  Medusa is a cross-platform C2 agent compatible with Python 2.7 and 3.8, compatible with Mythic
  ☆197Updated 2 months ago
• MythicAgents / Athena
  ☆210Updated 5 months ago
• RedTeamOperations / Journey-to-McAfee
  ☆113Updated 3 years ago
• d1rkmtrr / AMSI_patch
  Patching AmsiOpenSession by forcing an error branching
  ☆148Updated 2 years ago
• VirtualAlllocEx / Payload-Download-Cradles
  This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …
  ☆255Updated 3 years ago
• iilegacyyii / Shellcrypt
  A QoL tool to obfuscate shellcode. In the future will be able to chain encoding/encryption/compression methods.
  ☆207Updated 2 years ago
• kleiton0x00 / Shelltropy
  A technique of hiding malicious shellcode via Shannon encoding.
  ☆261Updated 3 years ago
• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆336Updated last year
• smokeme / airstrike
  ☆170Updated last year
• georgesotiriadis / MalwareDev
  ☆84Updated 3 years ago
• nettitude / ShellcodeMutator
  ☆245Updated 2 years ago
• florylsk / RecycledInjector
  Native Syscalls Shellcode Injector
  ☆266Updated 2 years ago
• MythicAgents / merlin
  Cross-platform post-exploitation HTTP Command & Control agent written in golang
  ☆104Updated 6 months ago
• paranoidninja / Brute-Ratel-C4-Community-Kit
  This repository contains scripts, configurations and deprecated payload loaders for Brute Ratel C4 (https://bruteratel.com/)
  ☆283Updated last year
• Peco602 / cobaltstrike-aggressor-scripts
  A collection of Cobalt Strike Aggressor scripts.
  ☆103Updated 3 years ago
• dievus / PowerShellRunner
  PowerShell runner for executing malicious payloads in order to bypass Windows Defender.
  ☆74Updated 3 years ago
• HavocFramework / Talon
  (Demo) 3rd party agent for Havoc
  ☆145Updated 2 years ago
• Cerbersec / notes
  Resources and articles I need to take a look at. Mostly about malware/exploit development and analysis.
  ☆84Updated 3 years ago
• nettitude / Aladdin
  ☆222Updated 2 years ago
• kleiton0x00 / RedditC2
  Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic lo…
  ☆268Updated 2 years ago
• CodeXTF2 / WindowSpy
  WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.
  ☆277Updated 8 months ago
• gh0x0st / wanderer
  An open-source process injection enumeration tool written in C#
  ☆173Updated 2 years ago
• 0xTriboulet / Revenant
  Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework
  ☆387Updated last year
• pracsec / AmsiBypassHookManagedAPI
  A new AMSI Bypass technique using .NET ALI Call Hooking.
  ☆192Updated 2 years ago
• brosck / Reaper
  「💀」Proof of concept on BYOVD attack
  ☆164Updated 10 months ago
• S3cur3Th1sSh1t / Ruy-Lopez
  ☆313Updated 2 years ago
• tihanyin / Simple-Reverse-Shell
  Simple reverse shell to avoid Win 11 defender detection
  ☆122Updated 3 years ago